Configure Firewall
The table below describes the Enterprise firewall rule for managing the communications between the components of the Live Platform Device Manager provisioning deployment.
Endpoints deployed in the enterprise sites traverse the public internet to connect to the Redirect Server, Live Platform Device Manager and Azure Storage account over HTTPS port 443.
The figure below illustrates the Firewall topology.
The table below describes the firewall rules for the components of the Device Manager provisioning deployment.
|
Protocol |
Allow Port |
Port Number |
Allowed Network |
Purpose |
|||
|---|---|---|---|---|---|---|---|
|
Endpoints |
|||||||
|
Endpoints Þ Live Platform Device Manager |
TCP (HTTPS) |
443 |
Outbound connection (Send-only) with Device Manager.
|
Used by the Endpoints for sending requests to the Device Manager. |
|||
|
Endpoints Þ Azure Blob Storage Container |
TCP (HTTPS) |
443 |
Outbound connection (Send-only) with the Azure Blob.
|
Used by endpoints for sending requests to the Blob for updated firmware and configuration files and for receiving them in return. |
|||
|
Endpoints Þ Redirect Server |
TCP (HTTPS) |
443 |
Outbound connection (Send-only) with Redirect Server.
|
Used by endpoints for directing them to the Service Device URL on the Live Platform; the Provisioning URL which triggers the firmware and configuration file update upon bootup and connection to the network. |
|||